CVE-2017-7529

MEDIUM

Description

Nginx versions since 0.5.6 up to and including 1.13.2 are vulnerable to integer overflow vulnerability in nginx range filter module resulting into leak of potentially sensitive information triggered by specially crafted request.

References

http://mailman.nginx.org/pipermail/nginx-announce/2017/000200.html

http://www.securityfocus.com/bid/99534

http://www.securitytracker.com/id/1039238

https://access.redhat.com/errata/RHSA-2017:2538

https://puppet.com/security/cve/cve-2017-7529

Details

Source: MITRE

Published: 2017-07-13

Updated: 2020-11-16

Type: CWE-190

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:* versions from 0.5.6 to 1.12.1 (inclusive)

cpe:2.3:a:nginx:nginx:*:*:*:*:*:*:*:* versions from 1.13.0 to 1.13.2 (inclusive)

Configuration 2

OR

cpe:2.3:a:puppet:puppet:*:*:*:*:enterprise:*:*:* versions from 2017.1.0 to 2017.1.1 (inclusive)

cpe:2.3:a:puppet:puppet:*:*:*:*:enterprise:*:*:* versions from 2017.2.1 to 2017.2.3 (inclusive)

cpe:2.3:a:puppet:puppet_enterprise:*:*:*:*:*:*:*:*

Tenable Plugins

View all (17 total)

IDNameProductFamilySeverity
140926Oracle Linux 7 : olcne / nginx (ELSA-2020-5862)NessusOracle Linux Local Security Checks
medium
140789Oracle Linux 7 : olcne / nginx (ELSA-2020-5859)NessusOracle Linux Local Security Checks
medium
138072Palo Alto Networks PAN-OS 7.1.x < 7.1.26 / 8.0.x < 8.1.13 / 8.1.x < 8.1.13 / 9.0.x < 9.0.6 VulnerabilityNessusPalo Alto Local Security Checks
medium
98967nginx < 1.12.1 Integer OverflowWeb Application ScanningComponent Vulnerability
medium
98966nginx < 1.13.3 Integer OverflowWeb Application ScanningComponent Vulnerability
medium
118151nginx Data Disclosure VulnerabilityNessusWeb Servers
medium
111887Photon OS 1.0: Binutils / C / Dnsmasq / Git / Gnutls / Krb5 / Linux / Mercurial / Mesos / Nginx PHSA-2017-0038 (deprecated)NessusPhotonOS Local Security Checks
high
108639openSUSE Security Update : nginx (openSUSE-2018-316)NessusSuSE Local Security Checks
medium
105359nginx < 1.13.3 Integer Overflow VulnerabilityNessusWeb Servers
medium
103228Amazon Linux AMI : nginx (ALAS-2017-894)NessusAmazon Linux Local Security Checks
medium
102720Fedora 25 : 1:nginx (2017-c27a947af1)NessusFedora Local Security Checks
medium
102719Fedora 26 : 1:nginx (2017-aecd25b8a9)NessusFedora Local Security Checks
medium
102057openSUSE Security Update : nginx (openSUSE-2017-867)NessusSuSE Local Security Checks
medium
101546Ubuntu 14.04 LTS / 16.04 LTS / 16.10 / 17.04 : nginx vulnerability (USN-3352-1)NessusUbuntu Local Security Checks
medium
101535Debian DLA-1024-1 : nginx security updateNessusDebian Local Security Checks
medium
101490Debian DSA-3908-1 : nginx - security updateNessusDebian Local Security Checks
medium
101381FreeBSD : nginx -- a specially crafted request might result in an integer overflow (b28adc5b-6693-11e7-ad43-f0def16c5c1b)NessusFreeBSD Local Security Checks
medium